Reading: Ethereum Just Shot Up $250 But Don’t Bet on That Resistance Breaking

Arbismart Logo Sponsored
Ethereum

Ethereum Vulnerability Could Have Allowed Attackers to Drain Hot Wallets

Avatar

Georgi Georgiev | Nov 26, 2018 | 18:00

Poloniex suffers BitMEX style security breach Ethereum

Ethereum Vulnerability Could Have Allowed Attackers to Drain Hot Wallets

Avatar

Georgi Georgiev | Nov 26, 2018 | 18:00

Send
Share

A recent vulnerability in the Ethereum network could have reportedly allowed hackers to gain massive profits from cryptocurrency exchanges which haven’t set up a Gas usage limit.

A Critical Vulnerability

A group of researchers discovered a vulnerability in Ethereum which allowed attackers to drain exchanges by burning their ETH on high transaction costs or to benefit directly by minting GasToken.

The report details that exchanges which allow parties to withdraw ETH to arbitrary addresses without setting gas usage limit could have been exposed to increased transaction fees. According to the paper, there are two different options of exploiting this vulnerability.

The first option would allow the hacker to drain the unprotected exchange by making it pay for large amounts of transaction fees. The second option would allow the attacker to mint GasToken for substantial profits by simply imposing a small amount of GasToken as a tax for “naïve users.”

Issues Purportedly Patched

Reportedly, the vulnerability only affected exchanges which initiate Ethereum transactions and not such which process them. Furthermore, the report confirms that decentralized exchanges, as well as other venues operating on smart contract transactions initiated by users, remained unaffected. The report also outlined that EVM-based blockchains and Ethereum Classic may also be affected.

According to the official Medium publication, the researchers have already connected to a bulk of the affected exchanges which have supposedly patched the vulnerability.

Additionally, the researchers have given recommendations for exchanges to implement gas limits on all transactions.

Implement reasonable gas limits on all transactions. If any expensive transactions are made, ensure that the user bears the cost. Fees for a given withdrawal should always cover the gas needed. – reads the report.

What do you think of the recently discovered vulnerability and the lack of protection in certain exchanges? Don’t hesitate to let us know in the comments below!

Images courtesy Bitcoinist archives, Shutterstock.

BitStarz Player Lands $2,459,124 Record Win! Could you be next big winner?

Tags: , , , , ,
Send
Share
Show comments
Ethereum

Ethereum 2.0 Likely to Happen as Tens of Millions Sent to Deposit Contract

Ethereum 2.0 seems to be confirmed to happen soon as deposits in the contract spike. Ethereum 2.0 Nears as Deposits Spike There is now 80% of the ETH needed to launch the upgrade by...

Nick Chong | 14 hours ago
Ethereum

Analysts Still Expect Ethereum Rally to $500 Despite $40 Flash Drop

Analysts think that Ethereum is primed to press higher despite last night’s $40 drop. One analyst noted that Ethereum remains in an extremely advantageous position on a macro...

Nick Chong | 5 days ago
Ethereum

Quantative Analyst Says Ethereum Could Hit $10,000 This Market Cycle

Ethereum is actually outperforming Bitcoin in 2020. The price of the leading cryptocurrency is up to $460 as of this article’s writing, but peaked at even higher levels in the...

Nick Chong | 1 week ago